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1 Independent on-line monitoring of evolving systems 
Naftaly H. Minsky 

May 1996 Proceedings of the 18th international conference on Software engineering 

Full text available: " P pdf(916.52 KB) 
' Publisher Site 



Additional Information: full citation , abstract , references , index terms 



We argue that the trustworthiness of evolving software systems can be significantly enhanced 
by a rigorous process of independent on-line monitoring. Such monitoring can prevent fraud, 
encourage careful maintenance, and serve as an early detector of irregularities in the state 
and behavior of a system. Unfortunately, there is a conflict between the concepts of on-line 
and independent monitoring. This conflict is due to the fact that on-line monitoring requires 
the embedding of some kinds of sens ... 

Keywords: evolving software systems, fraud prevention, independent on-line monitoring, 
irregularity detection, law-governed architecture, sensors, software maintenance, system 
monitoring, systems software 



2 Coupling virtual machines and system construction 
M. Berthaud, M. Jacolin, Ph. Potin, H. Savary 

March 1973 Proceedings of the workshop on virtual computer systems 

Full text available. ^ pdf(781.56 KB) Additional Information: full citation , abstract , references , citings , index terms 

The behavior of a system running in one virtual machine (OBJECT) is made accessible to an 
external observer through another virtual machine (SPY) coupled to the previous one. Given 
the independence of virtual machines, it is possible to run in SPY a fully operational system to 
which suitable components are added in order to achieve integration and debugging of new 
systems in OBJECT. 

3 Information transmission in computational systems 
Ellis Choen 

November 1977 Proceedings of the sixth ACM symposium on Operating systems 
principles 

Full text available: pdf(537.87 KB) Additional information: full citation , abstract , references , citings , index terms 

This paper presents Strong Dependency, a formalism based on an information theoretic 
approach to information transmission in computational systems. Using the formalism, we 
show how the imposition of initial constraints reduces variety in a system, eliminating 
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undesirable information paths. In this way, protection problems, such as the Confinement 
Problem, may be solved. A variety of inductive techniques are developed useful for proving 
that such solutions are correct. 
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Ladjel Bellatreche, Kamalakar Karlapalem, Michel Schneider 

November 2000 Proceedings of the ninth international conference on Information and 
knowledge management 

Full text available: l ff 1 | pdf(217.74 KB) Additional Information: full citation , references , citings , index terms 
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1 Incident handling: an orderly response to unexpected events 
Richard L. Rollason-Reese 

September 2003 Proceedings of the 31st annual ACM SIGUCCS conference on User 
services 

Full text available: ^ pdf(198.98 KB) Additional Information: full citation , abstract , references , index terms 

Computer viruses, worms, denial of service attacks, equipment failures, vandalism, theft 
and other unwelcome events can send your computer services staff scrambling and cause a 
variety of problems for your user community. Even the least of these situations can be a 
distraction for your staff. The most severe can provide an unscheduled opportunity to test 
your disaster recovery procedure! How does your organization react to these events? Do you 
have a clearly-defined process in place to deal with ... 



Keywords: attack, emergency, incident handling, incident response, recovery, response 
team 



2 Digital rights management and fair use by desi g n: DRM and privacy Q 
Julie E. Cohen 

April 2003 Communications of the ACM, volume 46 issue 4 

Full text available: f| pdf(66.44 KB > 1 Additional Information: full citation , abstract , references , index terms 
htmlf 16.47 KB) 

How should the law respond to DRM restrictions that invade user privacy? 

3 Cost effective dynamic program slicing Q 
Xiangyu Zhang, Rajiv Gupta 

June 2004 ACM SIGPLAN Notices , Proceedings of the ACM SIGPLAN 2004 conference 

on Programming language design and implementation, volume 39 issue 6 
Full text available: l gpdf(234.12 KB) Additional Information: full citation , abstract , references , index terms 

Although dynamic program slicing was first introduced to aid in user level debugging, 
applications aimed at improving software quality, reliability, security, and performance have 
since been identified as candidates for using dynamic slicing. However, the dynamic 
dependence graph constructed to compute dynamic slices can easily cause slicing algorithms 
to run out of memory for realistic program runs. In this paper we present the design and 
evaluation of a cost effective dynamic program slicing a ... 

Keywords: debugging, dynamic dependence graph, testing 
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Co pyrights and access-rights: How DRM-based content delivery systems disrupt 

expectations of "personal use" 

Deirdre K. Mulligan, John Han, Aaron J. Burstein 

October 2003 Proceedings of the 2003 ACM workshop on Digital rights management 

i .J , , , ,, a , /;Mi;eoi/m Additional Information: full citation , abstract , references , index terms . 

Full text available: Tg pdf(416.68 KB) . 

review 

We set out to examine whether current, DRM-based online offerings of music and movies 
accord with consumers* current expectations regarding the personal use of copyrighted 
works by studying the behavior of six music, and two film online distribution services. We 
find that, for the most part, the services examined do not accord with expectations of 
personal use. The DRM-based services studied restrict personal use in a manner inconsistent 
with the norms and expectations governing the purchase and ... 

Keywords: access control, content distribution, copyright, digital rights management, fair 
use, personal use, privacy 



5 Viewpoint: Trust online, trust offline 
Eric M. Uslaner 

April 2004 Communications of the ACM, volume 47 issue 4 

Full text available: f| pdf(61.82 KB) Iff Additjona| lnformat ion: full citation , abstract , index terms 
html(11.15 KB) 

Online businesses would do well to cultivate their visitors' adventurous, trusting, optimistic, 
risk-taking world views. 

6 Upfront 

CORPORATE Linux Journal Staff 

July 2002 Linux Journal, volume 2002 issue 99 

Full text available: g| html(17.52 Addjtiona | information: full citation , index terms 
KB) 



7 Columns: Surfing the net for software engineering notes Q 
Mark Doernhoefer 

July 2001 ACM SIGSOFT Software Engineering Notes, volume 26 issue 4 
Full text available: *g pdf(2.32 MB) Additional Information: full citation 



8 Virtual extension: Hidden surveillance by Web sites: Web bugs in contemporary use Q 
David Martin, Hailin Wu, Adil Alsaid 

December 2003 Communications of the ACM, volume 46 issue 12 

Full text available: g pdf(560.75 KB) , Addjtjona , | nformation: fu || citation , references , index terms , review 
hg] html(26.40 KB) ~~ " 



9 Security: Information system security curricula development 
Ed Crowley 

October 2003 Proceeding of the 4th conference on Information technology education 
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Full text available: ^ pdf(191.25 KB) Additional Information: full citation , abstract , references , index terms 

In this paper, we survey current literature concerning Information Systems Security Training 
and Education. This paper also describes current Information System Security Training and 
Education dynamics. Finally, this paper presents a graduate level information system 
security specialization that was developed using this information. 

Keywords: information technology curricula, information technology security 



10 Letters Q 
Linux Journal Staff 

May 2004 Linux Journal, volume 2004 issue 121 

Full text available: html(8.78 KB) Additional Information: full citation 



11 Use of a P3P user agent by early adopters 
Lorrie Faith Cranor, Manjula Arjula, Praveen Guduru 

November 2002 Proceeding of the ACM workshop on Privacy in the Electronic Society 

_ 1 1 ■ ■ , u. « ^/y, C n-v.iym Additional Information: full citation , abstract, references , citings, index 
Full text available: TO pdf(450.21 KB) ; : 

LJ "^ terms , review 

The Platform for Privacy Preferences (P3P), developed by the World Wide Web Consortium 
(W3C), provides a standard computer-readable format for privacy policies and a protocol 
that enables web browsers to read and process privacy policies automatically. P3P enables 
machine-readable privacy policies that can be retrieved automatically by web browsers and 
other user agent tools that can display symbols, prompt users, or take other appropriate 
actions. We developed the AT&T Privacy Bird as a P3P use ... 

Keywords: P3P, privacy, survey, user agent, user study 



12 The challenges of designing lab exercises for a curriculum in computer security Q 
Rahul Tikekar, Thomas Bacon 

May 2003 The Journal of Computing in Small Colleges, volume is issue 5 

Full text available: *g pdf( 55.08 KB) Additional Information: full citation , abstract , references , index terms 

Increasing awareness of the vulnerabilities of computer systems has led to the introduction 
of several programs in computer security. Most of these programs are meant to attract 
graduate students. Southern Oregon University has recently started a new undergraduate 
track in computer security and information assurance. In this paper we describe the 
development of lab exercises geared toward such a curriculum. The process begins with the 
curriculum itself and the lab - designing one that mirrors an ... 

13 Forth report: Deus Ex Macintosh Q 
Paul Frenger 

March 2004 ACM SIGPLAN Notices, Volume 39 issue 3 

Full text available: ffl pdf(329.67 KB) Additional Information: full citation , references 



14 Columns: Risks to the public in co m puters and related systems Q 
Peter G. Neumann 

November 2003 ACM SIGSOFT Software Engineering Notes, volume 28 issue 6 
Full text available: Additional Information: 
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full citation 



15 O pen Source Software Q 
Sami Asiri 

March 2003 ACM SIGCAS Computers and Society, Volume 32 issue 5 
Full text available: jji] html(635.05 KB) Additional Information: full citation 



16 ipod. uPod. wePod...: doubling your client support and strengthening team ties with Q 

virtually no extra resources 
Jesse Ben Saunders 

September 2003 Proceedings of the 31st annual ACM SIGUCCS conference on User 
services 

Full text available: *g pdf(140.51 KB) Additional Information: full citation , abstract , index terms 

It's a Wednesday afternoon at the Princeton University OIT Help Desk phone room. An 
undergraduate calls in a panic. Their Windows 2000 laptop, which contains all their work for 
a paper due that Friday, is displaying a blue screen that reads: "Inaccessible Boot Device." 
Their comp sci roommate has already worked on the computer, but can't get it to 
boot.Whafs the best way to handle a situation like this - one that needs immediate hands- 
on consulting? For Princeton, the answer was to provide an a ... 

Keywords: consulting, lab 



17 Expanding help desk services: the benefits of student S.O.S. Q 
Lea H. Snyder 

September 2003 Proceedings of the 31st annual ACM SIGUCCS conference on User 
services 

Full text available: * Q pdf(295.64 KB) Additional Information: full citation , abstract , index terms 

It is a given fact that information technology managers often must make decisions on how 
to best serve the community at large while most effectively utilizing the manpower and 
resources available to them. Many Help Desks have expanded services by offering new 
technology, like Desktop Streaming, that has enabled them to meet the users 1 demands for 
immediate service without having to wait for a technician. However, what can the Help Desk 
do when this technology will not work because the user canno ... 

Keywords: accountability, customer service, help desk, management, measurement, on- 
site assistance, performance, student consultants, student staff 



18 Letters Q 
Linux Journal Staff 

September 2003 Linux Journal, volume 2003 issue 113 

Full text available: fjg html(8.47 KB) Additional Information: full citation 



19 Security from the perspective of the workstation user workshop Q 
Bruce P. Tis 

May 2002 The Journal of Computing in Small Colleges, volume 17 issue 6 
Full text available: *g pdf( 15.65 KB) Additional Information: full citation , index terms 
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20 Risks to the public: Risks to the public in computers and related systems Q 
Peter G. Neumann 

May 2002 ACM SIGSOFT Software Engineering Notes, volume 27 issue 3 
Full text available: ^pdf(1.92 MB) Additional Information: full citation 
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1 Invasive software, who's inside your computer 

Lawton, G.; 

Computer , Volume: 35 , Issue: 7 , July 2002 
Pages: 15 - 18 

fAbstractl [PDF Full-Text (331 KB)1 ieeejnl 

2 Bot Software Spreads, Causes New Worries 

McLaughlin, L; 

Distributed Systems Online, IEEE , Volume: 05 , Issue: 6 , June 2004 
Pages :1 - 1 



rPDF Full-Text (192 KB)1 ieee jnl 



3 Spyware: Menace, nuisance, or both? 

Goth, G.; 

Security & Privacy Magazine, IEEE , Volume: 1 , Issue: 3 , May-June 2003 
Pages: 10 - 11 

fAbstractl fPDF Full-Text (269 KB)1 ieeejnl 
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Configuring Wireless LANs to Meet POD Security Requirements - James Powers Mbong (Co rrect) 

which may include any eavesdropping programs, spyware, or Trojan horses. Second and the most important 
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the user if any rogue applications (Trojans or spyware) are trying to access the network. Make sure to 
www.atstake.com/research/reports/acrobat/atstake_wlan_hotspots.pdf 

Exploiting the Security Weaknesses of the Gnutella Protocol - Zeinalipour-Yazti (Correct) 

Gnutella to prevent similar attacks in the future. Spyware programs are also a huge problem in the P2P 

are also a huge problem in the P2P community. A spyware is a program that is usually distributed along 

Kazaa.com, www.kazaa.com/23. Cydoor Spyware, Cydoor Technologies, Inc. 

www.cs.ucr.edu/-csyiazti/courses/cs260-2/project/gnutella.pdf 

The Privacy Practices of Web Browser Extensions - Martin. Jr.. Smith.. (2000) (Correct) 
13 Spyware Control And Privacy Protection Act Of 2000 

Unexpectedly -May Be Liable Under This Act. Spyware Control And Privacy Protection Act Of 2000 
users for the purposes of communicating it as "spyware" and requires that it adhere to clear notice, 
www.privacyfoundation.org/pdf/bea.pdf 
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Finding Service Paths in an Overlay Media Service Proxy Network - Xu. Nahrstedt (2002) (Correct) 

or wide-area networks. A media Service ProxY (or SPY for the rest of the paper) accepts a media stream, 

www.cs.purdue.edu/homes/dxu/pubs/MMCN02-extended.pdf 

Components. Frameworks and GKS Input - Puce, van Liere. Haaen (1989) (Correct) (1 citation) 
-Components, Frameworks and GKS Input D. A. DuceR. van 

approach to a Reference Model for computer graphics, currently under discussion in the ISO computer 
currently under discussion in the ISO computer graphics subject committee. The paper shows how a formal 
www.cwi.nl/-robertl/papers/1990/hier/paper1. ps.Z 

Negotiation for Automated Generation of Temporal.. - Dalai. Feiner.. (1996) (Correct) (6 citations) 
In negotiation, media-specific generation components interact with a novel coordination component 
and explain how speech, written text, and graphics are generated and coordinated. Our emphasis is 
natural language generation, knowledge-based graphics generation, speech INTRODUCTION Multimedia 
www.cs.columbia.edu/-dalal/papers/mm96.ps.gz 

Se gregatory Coordination and Ellipsis in Text Generation - Shaw (1998) (Correct) (6 citations) 
multiple-distinct procedure. In the sentence, The spy was in his forties, of average build, and spoke 
systems contain a strategic and a tactical component. The strategic component determines what to say 
www.cs.columbia.edu/~shaw/papers/colingacl98.ps.gz 

Hierarchical Techniques for Global Illumination.. - Slusallek.. (Correct) 

can be thought of consisting of three main components: scene description, lighting computation, and 

Marc Stamminger, and Hans-Peter Seidel Computer Graphics Group, University of Erlangen, Germany Abstract. 

Germany Abstract. Since the beginning of computer graphics, one of the primary goals has been to create 

graphics.stanford.edu/-slusallek/Papers/vismath97.ps.gz 

A neutral mechanism for the detection of deadlocks under PVM - Chaumette (Correct) 
Therefore we introduced the concept of a spy. A spy is a special form of graft that does not 
ftp.irisa.fr/pub/mirrors/netlib/pvm3/epvmug94/contrib/chaumette_a.ps 

Evolution of a 60 Decibel Op Amp Using Genetic Programming - Forrest Bennett (1996) (Correct) (2 citations) 
topology and sizing (numerical values) for each component of a low-distortion, lowbias 60 decibel 
www.genetic-programming.com/ICES60dB.ps 

Towards 3-D model-based tracking and recognition of human.. - Gavrila. Davis (1995) (Correct) 

from real images. Our system has two major components. The first component takes real image 

and entails finding the pose parameters of a graphical human model for which its synthesized 

3-D Body modeling, pose recovery and tracking 3-D graphical models for the human body often consist of two 

www.umiacs.umd. edu/users/gavrila/iwafgr.ps.Z 

PIDGETS++ - A C++ Framework Unifying PostScript Pictures.. - Scholz, Bokowski (Correct) 
graphical objects and of constraining their components are separate, in PIDGETSthey are the same: 
A CFramework Unifying PostScript Pictures, Graphical User Interface Objects, and Lazy One-Way 
Abstract A framework for programming graphical user interfaces (GUIs)called PIDGETSis 
www.inf.fu-berlin.de/-heron/papers.ag-ss/enno/tools-published.ps.gz 

Understanding Technical Articles and Their Diagrams - Futrelle, Gauch.. (1991) (Correct) 
structures. Each grammar rule has three components: 1) a production specifying a parent and its 
Starting from paper documents, both text and graphics are captured and analyzed. We describe the 
graphs. Model-based image processing discovers graphical objects such as lines, polygons and text. The 
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A Media-Independent Content Language for Integrated Text and.. - Nancy Green (1998) (Correct) (7 citations) 
one for information graphics. A media allocation component decides which parts of the plan shall be 
Content Language for Integrated Text and Graphics Generation Nancy Green*Giuseppe Carenini* 
generating integrated text and information graphics presentations about complex, quantitative 
www.cs.cmu.edu/afs/cs.cmu.edu/user/ngreen/public-web-pages/cvir98.ps 

Page Segmentation Using Script Identification Vectors.. - Hochberg, Cannon.. (1997) (Correct ) 
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Propositional Attitudes - Muskens (1993) (Correct) 

invalid argument (8)8) Sue knows that the tallest spy is a spy Tim is the tallest spy Sue knows that Tim 
let.kub.nl/general/people/rmuskens/pubs/./propatt.ps 

Ecole Polvtechnique FEdErale De Lausanne - An Ne (Correct) 

argument, the operation is performed on each component of the vector. Let us construct a second 
its many strengths are its powerful but flexible graphics routines, and its facility for writing functions 
Moreover, it is assumed to work with a graphical user interface (GUI) i ii such as Motif or 
dmawww.epflxh/~kuonen/PS/splusintro_first.ps.gz 

Tuple-Level Vs. Element-Level Classification - Xiaolei Qian (1993) (Correct) (4 citations) 

be either an elementary fact as "Enterprise is on a spy mission to Rigel" or a general law as "every ship 
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